admin/doc-manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: auth login URL is /login on Auth_server, not /auth/login

Browse Source 
GET /auth/login → 404. Auth_server's user-facing login form lives at
GET https://auth.queo.ru/login (rendered by views/login.html), while
POST /auth/login is the JSON API. Web was redirecting to wrong path.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
admin
2026-04-30 21:41:41 +03:00
parent de3af9d5fa
commit 4965fdd60f
5 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
apps/api/.env.example
+1 -1
View File
@@ -11,7 +11,7 @@ AUTH_ISSUER=https://auth.queo.ru
AUTH_AUDIENCE=queo.ru AUTH_AUDIENCE=queo.ru
AUTH_JWKS_URL=https://auth.queo.ru/.well-known/jwks.json AUTH_JWKS_URL=https://auth.queo.ru/.well-known/jwks.json
AUTH_COOKIE_NAME=q_at AUTH_COOKIE_NAME=q_at
AUTH_LOGIN_URL=https://auth.queo.ru/auth/login AUTH_LOGIN_URL=https://auth.queo.ru/login
# --- CORS --- # --- CORS ---
# Допустимые источники для браузера (запятая). На проде: https://doc.queo.ru # Допустимые источники для браузера (запятая). На проде: https://doc.queo.ru
apps/api/src/env.ts
+1 -1
View File
@@ -11,7 +11,7 @@ const EnvSchema = z.object({
AUTH_AUDIENCE: z.string().default('queo.ru'), AUTH_AUDIENCE: z.string().default('queo.ru'),
AUTH_JWKS_URL: z.string().url().default('https://auth.queo.ru/.well-known/jwks.json'), AUTH_JWKS_URL: z.string().url().default('https://auth.queo.ru/.well-known/jwks.json'),
AUTH_COOKIE_NAME: z.string().default('q_at'), AUTH_COOKIE_NAME: z.string().default('q_at'),
AUTH_LOGIN_URL: z.string().url().default('https://auth.queo.ru/auth/login'), AUTH_LOGIN_URL: z.string().url().default('https://auth.queo.ru/login'),
CORS_ORIGINS: z CORS_ORIGINS: z
.string() .string()
apps/web/.env.example
+1 -1
View File
@@ -1,2 +1,2 @@
# URL центра аутентификации Queo # URL центра аутентификации Queo
VITE_AUTH_LOGIN_URL=https://auth.queo.ru/auth/login VITE_AUTH_LOGIN_URL=https://auth.queo.ru/login
apps/web/src/auth.ts
+1 -1
View File
@@ -9,7 +9,7 @@ export type Me = {
docPermission: PermissionRole | null; docPermission: PermissionRole | null;
}; };
const AUTH_LOGIN_URL = import.meta.env.VITE_AUTH_LOGIN_URL ?? 'https://auth.queo.ru/auth/login'; const AUTH_LOGIN_URL = import.meta.env.VITE_AUTH_LOGIN_URL ?? 'https://auth.queo.ru/login';
export function redirectToLogin(): never { export function redirectToLogin(): never {
const returnTo = encodeURIComponent(window.location.href); const returnTo = encodeURIComponent(window.location.href);
docker/docker-compose.yml
+1 -1
View File
@@ -37,7 +37,7 @@ services:
AUTH_AUDIENCE: ${AUTH_AUDIENCE:-queo.ru} AUTH_AUDIENCE: ${AUTH_AUDIENCE:-queo.ru}
AUTH_JWKS_URL: ${AUTH_JWKS_URL:-https://auth.queo.ru/.well-known/jwks.json} AUTH_JWKS_URL: ${AUTH_JWKS_URL:-https://auth.queo.ru/.well-known/jwks.json}
AUTH_COOKIE_NAME: q_at AUTH_COOKIE_NAME: q_at
AUTH_LOGIN_URL: ${AUTH_LOGIN_URL:-https://auth.queo.ru/auth/login} AUTH_LOGIN_URL: ${AUTH_LOGIN_URL:-https://auth.queo.ru/login}
CORS_ORIGINS: ${CORS_ORIGINS:-https://doc.queo.ru} CORS_ORIGINS: ${CORS_ORIGINS:-https://doc.queo.ru}
TOCHKA_JWT_KEY: ${TOCHKA_JWT_KEY:-} TOCHKA_JWT_KEY: ${TOCHKA_JWT_KEY:-}
TOCHKA_WEBHOOK_SECRET: ${TOCHKA_WEBHOOK_SECRET:-} TOCHKA_WEBHOOK_SECRET: ${TOCHKA_WEBHOOK_SECRET:-}